MangoApps for ChatGPT

Setup

For end users (one-click connect)

1. In ChatGPT, open Settings → Apps (renamed from Connectors on 2025-12-17).
2. Find MangoApps in the directory and click Connect. (If you don't see it in the directory yet, choose Add custom and paste https://mcp.iq.mangoapps.com/api/v1/mcp.)
3. You'll be redirected to a "Which MangoApps tenant?" page. Enter your tenant slug — the part of your MangoApps URL before .workforce.mangoapps.com. For example, if you sign in at acme.workforce.mangoapps.com, enter acme.
4. Sign in to MangoApps if you're not already.
5. The consent screen lists every MangoApps domain ChatGPT is requesting access to (Forms, Tasks, etc.). Review and click Authorize.
6. You're returned to ChatGPT with the connector active. Start a new chat and ask anything — "list my recent form submissions", "summarize last week's surveys", "what's overdue on my OKRs?", or kick off Deep Research over your tenant.

For ChatGPT Desktop / Mac

ChatGPT Desktop on macOS supports remote MCP via the Apps menu — paste the same MCP endpoint URL when prompted. OAuth opens in your default browser; no separate config file required.

For administrators

Tenant-level controls

Tenant administrators manage every active connector from https://<your-tenant>.workforce.mangoapps.com/admin/connectors:

• See who connected — Each row shows the OAuth client (e.g., "ChatGPT"), the user who authorized it, the scopes granted, and the last-used timestamp.
• Revoke access — One-click revokes every active token issued to that connector for your tenant.
• Audit log — Bottom of the page lists the most recent MCP tool calls (tool name, status, latency).

App-level controls

Disabling a marketplace app in MangoApps automatically removes its tools from the connector's catalog. For example, if your tenant disables the "Sites" app, ChatGPT can no longer list, create, or modify Sites pages even if the user had previously consented to those scopes.

User-level controls

The connector inherits each user's permissions in MangoApps. A user without permission to view payroll data cannot use ChatGPT to view payroll data, regardless of the OAuth scopes granted.

Privilege gate for broad access

The mcp:all_tools scope — which grants ChatGPT access to every domain — can only be authorized by tenant administrators. Non-admin users must request per-domain scopes (read:forms, write:tasks, etc.).

Security and privacy

Data boundaries

• ChatGPT can access only the data the consenting user could see in MangoApps directly.
• Each access token is bound to a single MangoApps tenant. Tokens issued for tenant A cannot read or write tenant B's data.
• Tool call inputs and outputs are not used by MangoApps to train AI models, build user profiles, or feed analytics beyond per-tenant usage metering.

Transport and origin

• All connections require HTTPS.
• The MCP server validates the HTTP Origin header against an allowlist (chatgpt.com, chat.openai.com, openai.com, plus Anthropic's Claude domains and MangoApps tenant subdomains) to defend against DNS-rebinding attacks.
• OAuth 2.1 with PKCE (S256 only) prevents authorization-code interception.
• Token endpoint, registration endpoint, and tool endpoint each have separate per-IP rate limits.

Once data reaches ChatGPT

When the user invokes a tool, the tool output is returned to ChatGPT's runtime so it can compose a response. From that point, the data is subject to OpenAI's privacy policy: openai.com/policies/privacy-policy and the applicable enterprise/team agreement. MangoApps does not control retention or downstream use by OpenAI.

Audit trail

Every tool call writes an audit record with the tool name, calling client name (e.g., "ChatGPT"), the consenting user, the timestamp, the call latency, and a truncated copy of the call arguments. Audit records are tenant-scoped and accessible only to tenant administrators.

Full privacy policy

See the MangoApps Privacy Policy, specifically the section "AI Assistants and MCP Connectors".